Set AWS credential environment variables and execute.
- Run command with specified profile's session credentials.
- Export credentials to environment variables.
- Assume role with MFA.
- Cache credentials.
Run a command with my-profle:
% awsenv -p my-profile aws sts get-caller-identity
Run a command with my-profle no cache:
% awsenv -Cp my-profile aws sts get-caller-identity
Export credential environment variables with my-profile:
% eval $(awsenv -p my-profile)
If you use the fish shell:
% awsenv -p my-profile | source -
To see full options, run awsenv -h.
To use to assume role, you must set up aws cli configuration as follows.
in ~/.aws/config:
[profile my-profile]
role_arn = arn:aws:iam::1234:role/nobody
mfa_serial = arn:aws:iam::5678:mfa/somebody
source_profile = mgmt-profile
in ~/.aws/credentials:
[mgmt-profile]
aws_access_key_id = AKXXX
aws_secret_access_key = ZZZ
For more detials see https://docs.aws.amazon.com/cli/latest/userguide/cli-configure-role.html.
You can set token_duration per profile in ~/.aws/config as follows:
[profile my-profile]
token_duration=43200
MIT